<?
// register.php
// ben@benmcgee.com
// 2008-02-01
 
include("connect.php");
// don't include("dbLogin.php");

if (isset($_POST['submit'])){
    //This makes sure they did not leave any fields blank
    if (!$_POST['username'] | !$_POST['pass'] | !$_POST['pass2'] ) {
        die('You did not complete all of the required fields');
    }

    // checks if the username is in use
    if (!get_magic_quotes_gpc()) {
        $_POST['username'] = addslashes($_POST['username']);
    }

    $usercheck = $_POST['username'];
    $check = mysql_query("SELECT username FROM ActiveUsers WHERE username = '$usercheck'")
        or die(mysql_error());
    $check2 = mysql_num_rows($check);

    //if the name exists it gives an error
    if ($check2 != 0) {
        die('Sorry, the username '.$_POST['username'].' is already in use.');
    }
    // this makes sure both passwords entered match
    if ($_POST['pass'] != $_POST['pass2']) {
        die('Your passwords did not match.');
    }

    // here we encrypt the password and add slashes if needed
    $_POST['pass'] = md5($_POST['pass']);
    if (!get_magic_quotes_gpc()) {
        $_POST['pass'] = addslashes($_POST['pass']);
        $_POST['username'] = addslashes($_POST['username']);
    }

    // now we insert it into the database
    $insert = "call NewUser('" . $_POST['username'] . "', '" .$_POST['pass'] ."')";
    $add_member = mysql_query($insert)
        or die(mysql_error());
    include "header.php";
?>

    <h1>Tasktimer registration complete</h1>
    <p>Registration complete, please <a href = login.php>login</a>

<?php
    include "footer.php";
} else {
    include "header.php";
?>
<form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
<table align=center>
<tr><th colspan=2>
    TaskTimer New User
</th></tr>
<tr><td colspan=2 align=center>
    <a href="login.php">Login</a>
</td></tr>
<tr><td>Username:</td><td>
    <input type="text" name="username" maxlength="60">
</td></tr>
<tr><td>Password:</td><td>
    <input type="password" name="pass" maxlength="10">
</td></tr>
<tr><td>Confirm Password:</td><td>
    <input type="password" name="pass2" maxlength="10">
</td></tr>

<tr><td colspan=2 align=right>
    <input type="submit" name="submit" value="Register">
</td></tr>
</table>
</form>

<?php
include "footer.php";
}
?>
